This was my last research project while working for Secureworks. I’ve taken a new role at CrowdStrike but I am still proud of the work I did with my Secureworks fam. PTAL: Cloud to on-prem (and multi-cloud) lateral movement:

I placed 30th in the top 100 Most Valuable Researcher leaderboard!! Special thanks to @msftsecresponse for putting on these events year after year!

Permissive Avere Contributor Role Allows for VM Credential Dumping. Secureworks Threat Analysis: https://t.co/G3OxOgQ0c8 Nullg0re Blog (More personalized analysis): https://t.co/wJKoF68yIH

How to combine Responder w/ Evilgnx2 for privilege escalation and lateral movement in Passwordless, MFA and/or Zero Trust Environments: (Technique discovered by @nevadaromsdahl in 2023)) https://t.co/pmHJxrxn35

Episode 1 w/ @nullg0re, of my new podcast 'whoami' is now live on spotify and youtube! On whoami, I'm talking with great hackers to find out how they got into hacking and dig into their area of expertise. Check it out: https://t.co/y9EwoZLOww https://t.co/Gzj5D2E0Jx

Performed some research with my teammate @SantasaloJoosua regarding Multi-Tenant Application Redirect URIs. Turns out, in some cases, they can be taken over and used to steal Azure Authorization Code's (OAuth2.0 Auth Code Flow): https://t.co/J4daIpI2hp

Spent some time in Azure Machine Learning Studio and identified some areas to keep in mind when using the environment. Nothing groundbreaking, but definitely a reminder of why security needs to be more involved with the explosion of AI infrastructure / needs:

Oh! This is cool! I placed in the top 10 of hackers / researchers world wide in the @msftsecresponse Q4 Leaderboard with 325 points! And top 5 in the Azure specific leaderboard! Special shoutout to my teammates (past and present) @DrAzureAD @SantasaloJoosua for helping me level

Entra ID Connect Arbitrary Password Overwrite https://t.co/ZMkFOwvrJm

Vulnerability Hunting with ChatGPT https://t.co/8tK200x2jg

Earlier this year I made the Top 100 2023 Microsoft Most Valuable Researcher list! Thanks @msftsecresponse for sending out the swag! Just in time for the holidays!

Semper Fi Marines and Happy Veterans Day to all the veterans today. Here’s a picture of me (far left) standing with (IIRC) the governor of New York, and an Operation Iraqi Freedom Marine veteran who needed 13 facial reconstruction surgeries just to be in the photo. He was

Low Severity / by-design issue that can be abused in interesting ways. Going from Pass-The-PRT to AzureHound collection and more... https://t.co/QQlfa6JNp1

Dcsync without triggering traditional alerts? https://t.co/9H97diYbjB

Had a blast in Seattle this week attending @MSFTBlueHat . Got to finally meet my teammate @DrAzureAD in person and got to meet some really cool people. Thanks @Microsoft @msftsecresponse for having me out there! Great talks and great conversations! Here’s to next year! 🍻

Just to be a fly on the wall at Secureworks #TISummit23 listening to these Microsoft Most Valuable Researchers and glean nuggets from them is a win! @SantasaloJoosua @DrAzureAD @nullg0re

Join us at our #TISummit and engross yourself in the unique vulnerability findings by @Secureworks' distinguished Microsoft Most Valuable Researchers (MVRs) @DrAzureAD, @SantasaloJoosua, @nullg0re Don’t miss the opportunity! https://t.co/wuIG829pHu

Join us at our #TISummit and engross yourself in the unique vulnerability findings by @Secureworks' distinguished Microsoft Most Valuable Researchers (MVRs) @DrAzureAD, @SantasaloJoosua, @nullg0re Don’t miss the opportunity! https://t.co/w73rbsKC0Z

Join us at our #TISummit and engross yourself in the unique vulnerability findings by @Secureworks' distinguished Microsoft Most Valuable Researchers (MVRs) @DrAzureAD, @SantasaloJoosua, @nullg0re Don’t miss the opportunity! https://t.co/ipVT4TC0os